-
Qrator Research Lab has identified Aeternum C2, a botnet that uses the Polygon blockchain for commands, making it nearly impossible to shut down.
·
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Fraudsters clone Avast’s website to target French users with a €499 phishing scam, using urgency tactics, live chat, and card validation to steal payment data.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
OAuth consent in Entra ID can grant apps like ChatGPT email access after approval, exposing hidden risks that may bypass MFA and enable persistent access.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
New VulnCheck research reveals that while thousands of CVEs are discovered yearly, only 1% drive real-world impact.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
The US Treasury targets Sergey Zelenyuk and his firm Operation Zero for the illegal trade of stolen government cyber tools following the sentencing of Peter Williams.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
ShinyHunters claims 21 million records stolen in Odido NL and Ben.nl data breach as telecom company confirms cyberattack impacting customer contact system data.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Autonomous Endpoint Management cuts exposure time by matching patch speed to attacker breakout timelines, reducing risk, workload delays, and breach costs.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Cybersecurity researchers at Certo reveal Oblivion, a new Android Trojan targeting major brands like Samsung and Xiaomi. It bypasses security to steal passwords and bank codes.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Lazarus Group is now using Medusa ransomware in attacks on healthcare and social services, signaling a move toward profit-focused cybercrime.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Anthropic claims Chinese AI firms distilled Claude to train rival AI models, raising concerns about model extraction, security risks, and AI distillation abuse.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
